Subj : Hack Attempts - Is it normal?
To   : cheartsdale
From : Chris Trainor
Date : Tue Jul 17 2012 01:18 pm

  Re: Hack Attempts - Is it normal?
  By: cheartsdale to All on Tue Jul 17 2012 08:17:09

 > After several years on backup.  I decided to take out my BBS again and turn 
 > on.  I left it on overnight and when i woke up in the morning, i noticed on
 > web, terminal and ftp i had numerous hack attempts.  Trying to get access.
 > They were using userames like admin and generic passwords.  is that normal f
 > everyone to see those actvities showing up?

Prettymuch the norm.... there are piles of automated hackers (bots) 
running around out there... scanning IP addresses all day long looking 
for stuff to pop up and become active.  Once an active IP is found they 
port scan it to see what sockets are listening.

When they see common stuff like 21, 22, 23, etc (ftp,ssh,telnet) running 
they fire off automated login attempts trying common admin user ID's and 
common passwords.

IT's friggen annoying. So all the more reason to make sure you use good 
passwords on stuff. And possibly a firewall that can notice hack 
attempts and block automatically. 

One th ing that will keep a bunch of bots away tho is to simply disable 
ICMP echo responses (block ping).  Most bots if they can't ping an IP 
will just give up.  Now that doesn't work against someone activly trying 
to hack you specifically... just prevents a bunch of the automated stuff 
from hassling you.

--Chris

------------------------------------------
| Chris Trainor - FleetHQ BBS
| telnet://bbs.fleethq.org
| http://www.facebook.com/FleetHQ
| +1-401-949-0465 (V.34/HST/CrankyAtTimes)
------------------------------------------

---
 þ Synchronet þ FleetHQ BBS - Greenville, RI

.